14 min
AWS
Automate Insight Agent Deployment in AWS
Hello, fellow nerds! Today, I am going to walk you through deploying the Rapid7 Insight Agent in your AWS environment(s).
2 min
Metasploit Weekly Wrapup
Metasploit Wrapup 11/9/18
Now in Framework: Exploit for jQuery File Upload plugin vuln, two new post modules to exfil images and texts from compromised iOS devices. Plus, this year's community CTF.
3 min
Healthcare Security
Top 5 Cybersecurity Threats Healthcare Organizations Face
Looking to protect your healthcare organization from cyber-threats? Here are the top five threats to look out for and tips on how to outsmart attackers.
4 min
InsightIDR
Rolling with Your Logs, Part 1: Your Guide to Log Search in InsightIDR
In the first installment of this series, we'll cover the three most important basics of log search, then run through a few common Simple Mode searches.
3 min
Metasploit
Announcing the 2018 Metasploit Community CTF
Two targets, three days, and a thousand teams: Put your skills to the test for a chance to win prizes and bragging rights in Metasploit’s 2018 community CTF.
3 min
Metasploit Weekly Wrapup
Metasploit Wrapup: 11/2/18
Today marks the 30th anniversary of the Morris worm. We were hit by a wave of nostalgia, so here's a little history and a module-trip down memory lane courtesy of wvu.
4 min
Public Policy
Expanded Protections for Security Researchers Under DMCA Sec. 1201
The Library of Congress announced that it would renew and expand legal protections for security testing under Section 1201 of the Digital Millennium Copyright Act (DMCA).
3 min
Automation and Orchestration
Three Expensive Security Operations Costs and How to Minimize Them with SOAR
With the release of our Security Orchestration and Automation ROI Calculator, here are the three areas where companies spend the most resources on security.
5 min
Public Policy
Prioritizing the Fundamentals of Coordinated Vulnerability Disclosure
In this post, we aim to distinguish between three broad flavors of CVD processes based on authorization, incentives, and resources required. We also urge wider adoption of foundational processes before moving to more advanced and resource-intensive processes.
4 min
Managed Detection and Response (MDR)
A Day in the Life of a Rapid7 SOC Analyst
Today, we are diving into a day in the life of a Rapid7 security operations center (SOC) analyst, specifically around threat detection and response.
2 min
Whiteboard Wednesday
Whiteboard Wednesday: Common Vulnerabilities as Personified by Halloween Costumes
As a security professional, you don’t need a haunted house to feel spooked this Halloween—just start exploring your environment in search of vulnerabilities.
8 min
Vulnerability Disclosure
Shoring Up the Defenses Together: 2018Q2 and Q3 Wrap-Up
Today (October 29, 2018) we are sharing several vulnerabilities that have been fixed in Rapid7 products and supporting services.
4 min
Metasploit
Metasploit Wrapup: 10/26/18
We got to hit the build button three times this week. It's not something that we
normally do, since the Metasploit release each week triggers automatically. But
it's been such a week of surprise vulnerabilities and improvements that it made
sense to get a few extra builds out the door. So, Metasploit this week jumps
from 4.14.18 to 4.17.21. Look for it during your next Metasploit romp.
Exploit wrapup
While the excitement around libssl CVE-2018-10933
2 min
Threat Intel
Hacking as a Service: How This New Offering Is Changing the Threat Landscape
Just like other industries have adopted the as-a-service model, cyber threat actors are doing the same.
3 min
Security Operations
Rapid7 Leads All 'Strong Performers' in 2018 Forrester Wave for Emerging MSSPs
We’re proud to be recognized in the Forrester Wave as the leader in the “Strong Performer” category and to score second highest overall current offering for our Managed Security Services.